Sudo 1.9.8: intercepting commands

A month ago, when sudo 1.9.8 was still under development, we checked out the new log_subcmds option. It allows you log all commands (with some limitations) that are executed by a command started through sudo. For example, you can see if a shell was started through a text editor. The intercept option brings this one step further: you can prevent sub-commands from even running.

Read the rest of my blog at https://blog.sudo.ws/posts/2021/10/sudo-1.9.8-intercepting-commands/

• sudo
• planets